List of organizations certified against ISO/IEC 27001 or equivalent national standards, maintained by the ISMS International User Group based on inputs from all the certification bodies.

Provides the Common Criteria for Information Technology Security Evaluation, also published as ISO/IEC 15408.

Information covering the ISO/IEC 27000 series of standards, including updates and consultants directory

Recommended Security Controls for Federal Information Systems has a similar scope to ISO/IEC 27002 and cross-references the standard.

Open encyclopedia entry for the ISO/IEC 27000 family of information security management system standards.

Package containing the ISO/IEC 27001 and 27002 standards plus supporting materials such as policies and a glossary.

Mailing list to share knowledge about Information Security Management Systems based on the ISO/IEC 27000-series standards.

Plain English descriptions of ISO/IEC 27001, 27002 and other standards, including a list of the controls.

Supplier of Proteus Enterprise security risk management software for compliance with ISO/IEC 17799 and related information security, risk management and IT governance standards.

Information on the Standard of Good Practice for Information Security, which is published by the ISF and addresses information security from a business perspective.